Switch User Manual
ACL Commands 271
Parameter Description
Default Configuration
This command has no default configuration.
Parameter Description
list-name
Access-list name up to 31 characters in length.
deny
| permit Specifies whether the IP ACL rule permits or denies an action.
every Allows all protocols.
eq Equal. Refers to the Layer 4 port number being used as match
criteria. The first reference is source match criteria, the second
is destination match criteria.
number
Standard protocol number. Protocol keywords
icmp,igmp,ip,tcp,udp.
srcip
Source IP address.
srcmask
Source IP mask.
dstip
Destination IP address.
dstmask
Destination IP mask.
portvalue
The source layer 4 port match condition for the ACL rule is
specified by the port value parameter (Range: 0–65535).
portkey
Or you can specify the
portkey
, which can be one of the
following keywords: domain, echo, ftp, ftpdata, http, smtp,
snmp, telnet, tftp, and www.
log Specifies that this rule is to be logged.
time-range-name
Displays the name of the time-range if the ACL rule has
referenced a time range.
assign-queue
queue-
id
Specifies the particular hardware queue for handling traffic that
matches the rule. (Range: 0-6)
mirror
interface
Allows the traffic matching this rule to be copied to the
specified interface.
redirect
interface
This parameter allows the traffic matching this rule to be
forwarded to the specified unit/slot/port.
2CSPC4.XCT-SWUM2XX1.book Page 271 Monday, October 3, 2011 11:05 AM